406673 – Security: Sudo Restriction Bypass

Bug 406673 - Security: Sudo Restriction Bypass

Summary: Security: Sudo Restriction Bypass

Status:	RESOLVED NOT A BUG

Alias:	None

Product:	kate
Classification:	Applications
Component:	general (show other bugs)
Version:	Git
Platform:	Debian testing Linux

Importance:	NOR critical
Target Milestone:	---
Assignee:	KWrite Developers

URL:
Keywords:

Depends on:
Blocks:

Reported:	2019-04-19 06:12 UTC by Harley A.W. Lorenzo
Modified:	2019-04-19 16:18 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Harley A.W. Lorenzo 2019-04-19 06:12:23 UTC

SUMMARY
When kate is ran, it checks if SUDO_USER is empty, and if it is not, kate exits with a message stating due to security concerns running as sudo is disabled. However, one can continue to run kate as sudo very easily.

STEPS TO REPRODUCE
1. sudo bash -c "unset SUDO_USER && kate"

OBSERVED RESULT
It runs under sudo

EXPECTED RESULT
It would exit without running under sudo

ADDITIONAL INFORMATION

I am marking it as critical initially because I am unsure of the security implications of running under sudo in this way and whether the security concerns are mitigated via this special procedure or if the security concerns are still present.

Comment 1 Christoph Cullmann 2019-04-19 16:18:29 UTC

This message and error handling is only to avoid accidental use as root.
If you actively workaround by resetting the env var, it will not work.
I don't see an issue with that, most other X11 applications don't warn at all and let it be the users responsibility to don't run them as root.